Open
Cached
·
just now
76/100
SECURITY SCORE
Certificate Information
Subject
CN=sinhalamovies.info
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
January 31, 2026
Valid Until
May 01, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
8C:58:19:94:E3:8C:7B:75:DF:96:7B:EB:2A:0A:5E:F4:C9:4F:B4:92:8D:91:C8:5E:B0:13:88:07:40:BE:67:5B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
nonol.com
*.nonol.com
*.admin.nonol.com
accentswindows.com
*.accentswindows.com
*.email.accentswindows.com
*.mail.accentswindows.com
capitalhidalgo.com.mx
*.capitalhidalgo.com.mx
*.preview.capitalhidalgo.com.mx
*.api.coursfrancais.com
coursfrancais.com
*.coursfrancais.com
*.2692.dawratksa.com
*.418687.dawratksa.com
*.526912.dawratksa.com
*.aetecd.dawratksa.com
dawratksa.com
*.dawratksa.com
*.effiuu.dawratksa.com
*.favrq.dawratksa.com
*.fiajkmcw.dawratksa.com
*.gapf.dawratksa.com
*.i.dawratksa.com
*.imf.dawratksa.com
*.lvpt.dawratksa.com
*.nzsm25.dawratksa.com
*.ofde.dawratksa.com
*.pj.dawratksa.com
*.ps.dawratksa.com
*.sbonqk8.dawratksa.com
*.selmi.dawratksa.com
*.u.dawratksa.com
*.u5hfndcb.dawratksa.com
*.ugpttce.dawratksa.com
*.wfiqxwq.dawratksa.com
*.wildcard.dawratksa.com
*.xhwkihq.dawratksa.com
*.cpanel.goexploration.com
*.data.goexploration.com
goexploration.com
*.goexploration.com
*.wildcard.goexploration.com
labstud.com
*.labstud.com
*.www.labstud.com
maejeanvintage.shop
*.maejeanvintage.shop
*.random.maejeanvintage.shop
*.wildcard.maejeanvintage.shop
*.cdn.mecamtrai.com
mecamtrai.com
*.mecamtrai.com
*.sub.mecamtrai.com
*.admin.pashtomedia.com
*.backoffice.pashtomedia.com
*.hostmaster.pashtomedia.com
pashtomedia.com
*.pashtomedia.com
phapluancong.org
*.phapluancong.org
*.rd.phapluancong.org
*.20vu3i4j0kp0r7eh.pj8b.xyz
*.d.pj8b.xyz
pj8b.xyz
*.pj8b.xyz
*.tm.pj8b.xyz
*.ww25.pj8b.xyz
*.ww38.pj8b.xyz
*.blog.sinhalamovies.info
*.demo.sinhalamovies.info
*.dev.sinhalamovies.info
*.forums.sinhalamovies.info
*.m.sinhalamovies.info
*.mobile.sinhalamovies.info
*.new.sinhalamovies.info
*.news.sinhalamovies.info
*.random.sinhalamovies.info
sinhalamovies.info
*.sinhalamovies.info
*.test.sinhalamovies.info
*.ww38.sinhalamovies.info
*.random.stepgay.com
stepgay.com
*.stepgay.com
*.wildcard.stepgay.com
*.tmxh.zebj.com
zebj.com
*.zebj.com
Other domains in certificate